mirror of
https://github.com/isc-projects/bind9.git
synced 2026-03-09 01:30:39 -04:00
de519cd1c9
When performing QNAME minimization, named now sends an NS query for the original QNAME, to prevent the parent zone from receiving the QTYPE. For example, when looking up example.com/A, we now send NS queries for both com and example.com before sending the A query to the servers for example.com. Previously, an A query for example.com would have been sent to the servers for com. Several system tests needed to be adjusted for the new query pattern: - Some queries in the serve-stale test were sent to the wrong server. - The synthfromdnssec test could fail due to timing issues; this has been addressed by adding a 1-second delay. - The cookie test could fail due to the a change in the count of TSIG records received in the "check that missing COOKIE with a valid TSIG signed response does not trigger TCP fallback" test case. - The GL #4652 regression test case in the chain system test depends on a particular query order, which no longer occurs when QNAME minimization is active. We now disable qname-minimization for that test. |
||
|---|---|---|
| .. | ||
| ans3 | ||
| ans4 | ||
| ns1 | ||
| ns2 | ||
| ns5 | ||
| ns7 | ||
| prereq.sh | ||
| README | ||
| setup.sh | ||
| tests.sh | ||
| tests_sh_chain.py | ||
Copyright (C) Internet Systems Consortium, Inc. ("ISC")
SPDX-License-Identifier: MPL-2.0
This Source Code Form is subject to the terms of the Mozilla Public
License, v. 2.0. If a copy of the MPL was not distributed with this
file, you can obtain one at https://mozilla.org/MPL/2.0/.
See the COPYRIGHT file distributed with this work for additional
information regarding copyright ownership.
ns1 is the root server.
ns2 and ns5 are both authoritative servers.
ans3 is a mock authoritative server that can return various broken
responses.
ans4 is a mock authoritative server that can return CNAME or DNAME
responses of arbitrary size in arbitrary order.
ns7 is the resolver under test.